21 matches found
CVE-2024-27844
The issue was addressed with improved checks. This issue is fixed in Safari 17.5, macOS Sonoma 14.5, visionOS 1.2. A website's permission dialog may persist after navigation away from the site...
CVE-2024-27850
This issue was addressed with improvements to the noise injection algorithm. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, visionOS 1.2. A maliciously crafted webpage may be able to fingerprint the user...
CVE-2024-27844
The issue was addressed with improved checks. This issue is fixed in Safari 17.5, macOS Sonoma 14.5, visionOS 1.2. A website's permission dialog may persist after navigation away from the site...
CVE-2024-27808
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing web content may lead to arbitrary code execution...
DEBIAN-CVE-2024-27820
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing web content may lead to arbitrary code execution...
CVE-2024-27820
The issue was addressed with improved memory handling. This issue is fixed in tvOS 17.5, iOS 16.7.8 and iPadOS 16.7.8, visionOS 1.2, Safari 17.5, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. Processing web content may lead to arbitrary code execution...
UBUNTU-CVE-2024-27838
The issue was addressed by adding additional logic. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. A maliciously crafted webpage may be able to fingerprint the user...
UBUNTU-CVE-2024-27808
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing web content may lead to arbitrary code execution...
CVE-2024-27830
This issue was addressed through improved state management. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. A maliciously crafted webpage may be able to fingerprint the user...
CVE-2024-27850
Removed by vendor...
CVE-2024-27820
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing web content may lead to arbitrary code execution...
CVE-2024-27838
CVE-2024-27838 describes a fingerprinting risk in WebKit-based components exposed by Apple platforms. The issue, triggered by visiting a malicious webpage, allows fingerprinting of the user. The CVE is fixed in multiple platforms and versions: tvOS 17.5; iOS 16.7.8 and iPadOS 16.7.8; visionOS 1.2...
CVE-2024-27833
An integer overflow was addressed with improved input validation. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, tvOS 17.5, visionOS 1.2. Processing maliciously crafted web content may lead to arbitrary code execution...
CVE-2024-27844
The issue was addressed with improved checks. This issue is fixed in Safari 17.5, macOS Sonoma 14.5, visionOS 1.2. A website's permission dialog may persist after navigation away from the site...
CVE-2024-27844
CVE-2024-27844 affects Safari (and related WebKit components) on Apple platforms. The issue manifests as a website permission dialog that may persist after navigating away from the site. Technical detail in connected docs confirms the vulnerability is addressed by patches in visionOS 1.2, macOS S...
CVE-2024-27844
The issue was addressed with improved checks. This issue is fixed in Safari 17.5, macOS Sonoma 14.5, visionOS 1.2. A website's permission dialog may persist after navigation away from the site...
CVE-2024-27834
The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14.5. An attacker with arbitrary read and write capability may be able to bypass Pointer Authentication...
CVE-2024-27834
CVE-2024-27834 is a WebKit-related vulnerability where an attacker with arbitrary read/write capability may bypass Pointer Authentication. The issue is identified across WebKitGTK/WebKit2GTK deployments and is addressed by updates across multiple ecosystems: Apple platforms: fixed in iOS 17.5/iPa...
PT-2024-22078 · Apple · Macos Sonoma +3
Name of the Vulnerable Software and Affected Versions: visionOS versions prior to 1.2 macOS Sonoma versions prior to 14.5 Safari versions prior to 17.5 Description: The issue allows a website's permission dialog to persist after navigation away from the site. This was addressed with improved...
PT-2025-2396
Name of the Vulnerable Software and Affected Versions: macOS Sonoma versions prior to 14.5 iOS versions prior to 16.7.8 and prior to 17.5 iPadOS versions prior to 16.7.8 and prior to 17.5 Safari versions prior to 17.5 watchOS versions prior to 10.5 tvOS versions prior to 17.5 visionOS versions...